Another security update for Debian GNU/Linux has been released:
DSA-267-1 lpr -- buffer overflow
A buffer overflow has been discovered in lpr, a BSD lpr/lpd line printer spooling system. This problem can be exploited by a local user to gain root privileges, even if the printer system is set up properly.
For the stable distribution (woody) this problem has been fixed in version 2000.05.07-4.3.
For the old stable distribution (potato) this problem has been fixed in version 0.48-1.1.
For the unstable distribution (sid) this problem has been fixed in version 2000.05.07-4.20.
We recommend that you upgrade your lpr package immediately.
Download
DSA-267-1 lpr -- buffer overflow
A buffer overflow has been discovered in lpr, a BSD lpr/lpd line printer spooling system. This problem can be exploited by a local user to gain root privileges, even if the printer system is set up properly.
For the stable distribution (woody) this problem has been fixed in version 2000.05.07-4.3.
For the old stable distribution (potato) this problem has been fixed in version 0.48-1.1.
For the unstable distribution (sid) this problem has been fixed in version 2000.05.07-4.20.
We recommend that you upgrade your lpr package immediately.
Download
